Jump to content

Recommended Posts

Posted

I cant see the post, but why you want crash a server ? Players will get aggravated and might leave server. I dont see what you gain by crashing the server ...

Posted

I cant see the post, but why you want crash a server ? Players will get aggravated and might leave server. I dont see what you gain by crashing the server ...

Getting the noob servers away and the servers that u hate :P

Posted

yes i know but such decrypting / encrypting can be made with a script it is not so much trouble , also i think that l2j and l2off are using different encryption protocols that is why l2phx doesn't work on l2off right? Anyway i don't think l2phx catches every single TCP packet transmitted between the client and the server because i also know that in lineage 88% of all TCP packets transmitted are garbage packets that contain null values and not all can be seen by l2phx

 

the encryption made is by adding the session key that a player takes when he logs in the server and the packet number counter , after you login the server sends you the session key and you can count the packets sent by you , which is the packet number right? you just need to know which cipher algorithm is used for encrypt/decrypt and then you can decrypt the encrypted text and resend it using what i told you.

 

also the first packet contains a packet ID and player ID , Packet ID is always the same but the player ID can be seen in the authserver protocol (login server) and since this protocol always uses the same key for encryption it is also possible to read passwords as long as you know the name of the account and this is possible by making the server output database error messages , i remember some guy before 5 years (his name is irrelevant but he was using this forum) was telling me that it is possible to make the server output and odb error message when you request to the server the player ID , some other value and usrname or passwd using the BBS INJECTION METHOD or whatever other injection is possible for that matter and then the server will renspond with the odb error containing the missing value now if that were to be scripted be someone it would be the ultimate lineage hacktool.

 

 

No, no.

 

Phx decrypts all packets from the game server (none from the login server). The protocol version does not matter. It has a small .ini file with packets ids and format so that you understand them, but if you dont have a packet it will still decrypt and work fine. Even if its from a "higher" protocol version. That is until they change something completely in L2 (but they wont)

The cipher used for encryption is blowfish.

Decrypting it with a script in wireshark would be a major pain. Phx does it on the fly and its much easier.

L2 does not send "null" packets. there's no such thing as null packets, by the way. Neither "invisible" packets. There's a ping every minute or so to avoid the connection dying through some NATs.

A bug from 5y ago is likely fixed. Also, on off BBS is always disabled.

Posted

Soon new download links... Making it more user friendly and with a new attack method ;)

 

Waiting for them...I already gave you +1 karma for this amazing "shit", don't make me break the rules and give you one more +1! (jk :D)

Keep it up!

Posted

I Was Looking At The L2J Team Forum And I Just Found This Post Which Is About The Hack Tool We Talk About : http://www.l2jserver.com/forum/viewtopic.php?f=80&t=13115

 

omg they already know. can this changeset be the fix? http://l2jserver.com/trac/changeset/3408

Guest
This topic is now closed to further replies.

×
×
  • Create New...